Brocade SANnav before v2.3.0 and v2.2.2a stores SNMPv3 Authentication passwords in plaintext. A privileged user could retrieve these credentials with knowledge and access to these log files. SNMP credentials could be seen in SANnav SupportSave if the capture is performed after an SNMP configuration failure causes an SNMP communication log dump.
History

Fri, 27 Sep 2024 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: brocade

Published: 2023-08-31T00:20:30.874Z

Updated: 2024-09-27T19:12:13.928Z

Reserved: 2023-04-29T01:29:30.559Z

Link: CVE-2023-31925

cve-icon Vulnrichment

Updated: 2024-08-02T15:03:28.526Z

cve-icon NVD

Status : Modified

Published: 2023-08-31T01:15:08.753

Modified: 2024-11-21T08:02:24.340

Link: CVE-2023-31925

cve-icon Redhat

No data.